vaxry talked about LD_PRELOAD and I feel like that is a non-issue in this case.
If an attacker has the ability to modify LD_PRELOAD of an application, they already an ability to modify its behaviour without depending upon what D-Bus may let it do.
And if the attacker can change LD_PRELOAD for a process running as root, they might as well affect the target service directly rather than try doing something with the dbus daemon.
vaxry talked about
LD_PRELOADand I feel like that is a non-issue in this case.If an attacker has the ability to modify
LD_PRELOADof an application, they already an ability to modify its behaviour without depending upon what D-Bus may let it do.And if the attacker can change
LD_PRELOADfor a process running as root, they might as well affect the target service directly rather than try doing something with the dbus daemon.